0

For example, we have multiple logs that share the same structure:

Order Created { ..."trace": { "order_id":123456, ... }}
Order Paid { ..."trace": { "order_id":123456, ... }}
Order Voided { ..."trace": { "order_id":123456, ... }}

We can aggregate these logs using log explorer on @trace.order_id.

enter image description here

However, we also need to set a condition between the @timestamp of the order creation log and, for example, the @timestamp of the order voiding log.

For example:

If it's < 30s -> send an alert.

Improve this question
New contributor
Mostafa El-Marzouki is a new contributor to this site. Take care in asking for clarification, commenting, and answering. Check out our Code of Conduct.
Related questions
2190
How do I measure elapsed time in Python?
567
How to see all the logs
4
Datadog logs with C# and .NET
Load 5 more related questions Show fewer related questions

0

Reset to default

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.